WDAC FilePath rule level not working

%3CLINGO-SUB%20id%3D%22lingo-sub-3319698%22%20slang%3D%22en-US%22%3EWDAC%20FilePath%20rule%20level%20not%20working%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3319698%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20Everyone%2C%3C%2FP%3E%3CP%3EI%20have%20trouble%20adding%20the%20file%20path%20to%20the%20WDAC%20policy.%20I%20have%20used%20both%20the%20WDAC%20wizard%20as%20well%20as%20PowerShell%20cmdlets%20to%20create%20the%20policy's.%3C%2FP%3E%3CP%3EThe%20reason%20I%20want%20the%20File%20path%20to%20work%20is%20because%20I%20do%20not%20want%20to%20add%20fallback%20value%20of%20HASH%20or%20File%20Name.%3C%2FP%3E%3CP%3EThe%20host%20computers%20are%20above%20Windows%2010%20version%201903.%3C%2FP%3E%3CP%3EI%20was%20trying%20to%20pass%20a%20Simple%20filepath%20using%20the%20Custom%20Path%20feature%20on%20the%20WDAC%20wizard%20C%3A%5CWDAC*%3C%2FP%3E%3CP%3EI%20have%20also%20used%20the%20Rule%20option%2018%20%3A%20Disabled%3ARuntime%20FilePath%20Rule%20Protection%2C%20but%20this%20has%20not%20helped%3C%2FP%3E%3CP%3EThe%20goal%20is%20to%20allow%20all%20files%20in%20this%20particular%20folder%20(WDAC)%20to%20run%2C%20and%20for%20the%20rest%20of%20the%20directories%20I%20want%20them%20to%20meet%20at%20least%20Publisher%20level%20to%20run.%3C%2FP%3E%3CP%3EEven%20though%20I%20have%20added%20the%20Filepath%20in%20correctly%2C%20WDAC%20on%20enforcement%20mode%20still%20blocks%20these%20file%20present%20in%20the%20folder.%3C%2FP%3E%3CP%3ECan%20someone%20please%20help%20me%20figure%20out%20the%20Filepath%20Feature%20for%20WDAC%3F%3C%2FP%3E%3CP%3EThank%20you.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Visitor

Hello Everyone,

I have trouble adding the file path to the WDAC policy. I have used both the WDAC wizard as well as PowerShell cmdlets to create the policy's.

The reason I want the File path to work is because I do not want to add fallback value of HASH or File Name.

The host computers are above Windows 10 version 1903.

I was trying to pass a Simple filepath using the Custom Path feature on the WDAC wizard C:\WDAC*

I have also used the Rule option 18 : Disabled:Runtime FilePath Rule Protection, but this has not helped

The goal is to allow all files in this particular folder (WDAC) to run, and for the rest of the directories I want them to meet at least Publisher level to run.

Even though I have added the Filepath in correctly, WDAC on enforcement mode still blocks these file present in the folder.

Can someone please help me figure out the Filepath Feature for WDAC?

Thank you.

0 Replies